Title :
Secure Information Exchange - A Security Quantification Approach
Author :
Perka, Vilas Rao ; Mishra, Piyush
Author_Institution :
Dept. of Electr. & Comput. Eng., Michigan Technol. Univ., Houghton, MI
Abstract :
Quantification of security offers tremendous potential in improving the understanding, specification, and management of the security of a system. We propose a novel systematic approach to quantify security of a system based on the analysis of inter-dependence of security attributes and the impact of security guidelines and policies on system security. This paper presents proof of concept and initial investigations into the quantification of secure information exchange used as a safeguard over insecure public networks. A case study is presented to model and validate appropriate key sizes for crypto-ciphers used in a secure session based on the inter-relationship between asymmetric and symmetric key ciphers and the impact of key and session refreshes
Keywords :
cryptography; electronic data interchange; crypto-ciphers; information exchange; policies; public networks; security attributes; security guidelines; security quantification approach; system security; Computer architecture; Cryptography; Data communication; Data security; Guidelines; Information security; Mobile communication; Risk management; Wireless application protocol; Wireless networks;
Conference_Titel :
Electro/information Technology, 2006 IEEE International Conference on
Conference_Location :
East Lansing, MI
Print_ISBN :
0-7803-9592-1
Electronic_ISBN :
0-7803-9593-X
DOI :
10.1109/EIT.2006.252126
